Loss of Funds Due to Incorrect Deduction in claimYieldFeeShares
Function
#272
Labels
3 (High Risk)
Assets can be stolen/lost/compromised directly
bug
Something isn't working
duplicate-59
🤖_10_group
AI based duplicate group recommendation
satisfactory
satisfies C4 submission criteria; eligible for awards
sufficient quality report
This report is of sufficient quality
Lines of code
https://github.com/code-423n4/2024-03-pooltogether/blob/main/pt-v5-vault/src/PrizeVault.sol#L611-L622
Vulnerability details
Issue Description
The
claimYieldFeeShares
function in the contract is responsible for allowing the yield fee recipient to claim their shares of the yield fee. However, a critical issue has been identified in the deduction logic within the function:As it can be seen the function decrease the yield fee balance (
yieldFeeBalance
) not based on the_shares
parameter provided to the function, but instead the entire balance (_yieldFeeBalance
) is deducted, which can result in a loss of funds for the fee recipient because the remaining yield shares (yieldFeeBalance - _shares
) will be removed and the recipient will never be able to mint them again.Impact
The incorrect deduction logic in the
claimYieldFeeShares
function can lead to a significant loss of funds for the yield fee recipient.Tools Used
Manual review, VS Code
Recommended Mitigation
Review and correct the deduction logic within the
claimYieldFeeShares
function to ensure that only the appropriate amount of yield fee is deducted based on the_shares
parameter provided.Assessed type
Error
The text was updated successfully, but these errors were encountered: